CVE-2014-6584

Unspecified vulnerability in the Integrated Lights Out Manager (ILOM) component in Oracle Sun Systems Products Suite ILOM before 3.2.4 allows remote authenticated users to affect confidentiality via unknown vectors related to Backup Restore.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability : 8.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html	Patch Vendor Advisory
http://www.securitytracker.com/id/1031594
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html	Patch Vendor Advisory
http://www.securitytracker.com/id/1031594

Configurations

Configuration 1 (hide)

cpe:2.3:o:oracle:integrated_lights_out_manager_firmware:*:*:*:*:*:*:*:*

History

21 Nov 2024, 02:14

Type	Values Removed	Values Added
References	~~() http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html - Patch, Vendor Advisory~~	() http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html - Patch, Vendor Advisory
References	~~() http://www.securitytracker.com/id/1031594 -~~	() http://www.securitytracker.com/id/1031594 -

Information

Published : 2015-01-21 15:28

Updated : 2024-11-21 02:14

NVD link : CVE-2014-6584

Mitre link : CVE-2014-6584

CVE.ORG link : CVE-2014-6584

JSON object : View

Products Affected

oracle

integrated_lights_out_manager_firmware

CWE

NVD-CWE-noinfo

{"id": "CVE-2014-6584", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-01-21T15:28:22.070", "references": [{"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id/1031594", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1031594", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Integrated Lights Out Manager (ILOM) component in Oracle Sun Systems Products Suite ILOM before 3.2.4 allows remote authenticated users to affect confidentiality via unknown vectors related to Backup Restore."}, {"lang": "es", "value": "Vulnerabilidad sin especificar en el componente Integrated Lights Out Manager (ILOM) en Oracle Sun Systems Products Suite ILOM anterior a 3.2.4 permite usuarios autenticados afectar la confidencialidad a trav\u00e9s de vectores no especificados relacionados con Backup Restore."}], "lastModified": "2024-11-21T02:14:42.407", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:oracle:integrated_lights_out_manager_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A53D09EF-F049-4CF1-A1D1-AD7F1D6798D5", "versionEndIncluding": "3.2.3"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}